Symantec Data Loss Prevention

Bring security to your data

Drive total protection of your sensitive data with the most comprehensive detection technologies and unified policies of Symantec’s industry leading Data Loss Prevention (DLP).

Read the Report

Keep Your Data Safe from Malicious and Dirty Apps. Add Threat-Aware Data Protection

Combat data theft with unparalleled threat awareness – now integrated with the broadest DLP

Our industry-leading data loss prevention is now integrated with the most complete endpoint protection and informed by the world’s largest civilian threat intelligence network so you can:

  • Surveil behaviors within suspicious user-installed apps and stop data theft
  • Identify and stop dirty apps from furtively exfiltrating sensitive data such as trade secrets and customer records
  • Restrict non-compliant data transfers and verifiably protecting personal data

Keep Data Secure and Private for GDPR

Implement DLP at the core of your Data Protection plan

Data privacy regulations, such as GDPR require you to ensure sensitive data is properly managed. Symantec DLP is configured to identify sensitive data (including that defined by GDPR) and uses a variety of advanced data detection techniques to identify data in many forms.

  • Confidently identify regulated data, track its use, and location
  • Protection policies allow you to regulate the flow of sensitive data
  • Integrate with encryption and CASB technologies to protect email, removable media, individual files and data in the cloud
Extend Data Loss Prevention to the Cloud

Limit Access to Sensitive Data with DLP Data Access Governance

A least privileged access model help reduce data loss and compliance risks

DLP Data Access Governance gives visibility and control over excessive user access and permissions to sensitive files.

  • Assess open access to shares, folders, and files and identify over-exposed data
  • Identify true data owners to make faster, more-informed incident remediation decisions
  • Manage permission privileges to achieve a least privilege model for sensitive data

Protect Data Outside Your Managed Perimeter

Secure data by wrapping automatic protection around it

When data leaves your organization and is shared widely, all is not lost. Symantec DLP will identify sensitive data and enable advanced protection, allowing you to:

  • Control who can use data, even from unmanaged locations or devices
  • Define what level of access a user has using persistent encryption and digital rights
  • Monitor user access to sensitive data to identify risky behavior or security compromise
  • Revoke access to users, effectively digitally shredding a document

The Broadest Protection With a Single Solution

Single console and unified policy management for every channel – cloud, endpoints, storage, email and web

Business communication happens over an exhausting number of apps, devices and platforms. As companies look for ways to increase productivity and collaboration, they also increase the number of channels over which employees can leak or steal corporate data.

Symantec DLP can discover, monitor and protect sensitive data wherever it's used – in the office, on the road, or in the cloud. It gives you complete visibility and control across the broadest range of data loss channels: cloud apps, endpoints, data repositories, emails and web communications.

  • Easily manage data loss policies and incidents across every channel – all from one powerful management console
  • Offers flexible deployment options for any type of environment: on-premises, private cloud, hybrid cloud or public cloud

From data fingerprinting to machine learning, Symantec DLP accurately finds sensitive data in whatever guise it takes

Symantec DLP utilizes a combination of advanced technologies to accurately detect confidential data —whether it's at rest or in motion – and includes a variety of out-of-the-box policies (HIPAA, GDPR, PCI DSS, etc.) to help enable compliance with lower effort.

  • Vector Machine Learning (VML) learns and identifies intellectual property and other unstructured data that may difficult to describe such as financial documents, source code, etc.
  • Sensitive Image Recognition (SIR) detects sensitive data embedded in forms and other images (scanned documents, screenshots and pictures) with built-in Optical Character Recognition (OCR)
  • Exact Data Matching (EDM) identifies sensitive data by fingerprinting structured databases, e.g., "any customer name and their bank account number"
  • Indexed Document Matching (IDM) applies fingerprinting to documents to detect sensitive content that may be partially reused elsewhere, e.g., in an email message
  • Described Content Matching (DCM) looks for matches on regular expressions or patterns such as Social Security Number and credit card
  • Data Classification enables users to classify sensitive files and allows to protect them based on sensitivity by leveraging Symantec Information Centric Tagging (ICT)

Comprehensive Technology, Fewer False Positives

Symantec 2019 Internet Security Threat Report

Our 123 million sensors record thousands of threat events per second from 157 countries and block 142 million threats daily. Use intel from the world’s largest civilian threat network to your advantage—download ISTR 24 now.

Introducing Symantec Integrated Cyber Defense Exchange (ICDx)

Reduce complexity and cost with built-in integrations and streamlined interoperability.

ICDx simplifies product integrations and accelerates customer time to value across the Symantec enterprise portfolio and the industry’s largest partner ecosystem.

  • Remove the friction for security teams when integrating Symantec and third-party products
  • Enhance visibility from a unified view of events across Symantec products for searching, dashboards and reporting
  • Prepare higher quality cyber data to forward to SIEM and other SOC tools enhancing analytics and alerts
  • Speed responses to critical incidents with orchestrated actions targeting multiple Symantec products

Symantec Blogs

Ransomware Moves Away from Consumers

The rise in attacks on local governments and certain industries is about attackers maximizing the return...

Posted: 21 Oct, 2019 | 5 Min Read

Read More

The Building Blocks for Zero Trust

With Zero Trust emerging as the next generation of cyber security, federal managers must understand how...

Posted: 07 Oct, 2019 | 4 Min Read

Read More

With Zero Trust Security, No One Gets a Pass in The Network

Zero Trust is the future of enterprise security, offering government agencies the potential to substantially change...

Posted: 27 Sep, 2019 | 3 Min Read

Read More

Symantec Smart Government: Cyber Redefined

Here’s how government agency technical experts are moving data to the cloud securely and the best...

Posted: 25 Sep, 2019 | 4 Min Read

Read More

Industry Recognition

Symantec named a Leader in The Forrester Wave?: Data Security Portfolio Vendors Report
Learn More

Symantec is the Top Player in the DLP Market
Learn More

Winner 2018 SC Awards

Winner 2018 SC Awards

Discover Our Community

View the latest product discussions in our forums.

Need help?

Technical support and more.

Related Categories


Legal Information

Learn more about legal terms, policies and notices.

License and Service Terms & Repository

Symantec Data Loss Prevention consists of a unified management platform, content-aware detection servers, and lightweight endpoint agents. It also offers you a variety of flexible deployment options, including on-premise, hybrid cloud, and as a managed service (through a Symantec Data Loss Prevention Specialized Partner). Unlike other Data Loss Prevention solutions, Symantec has proven its ability to work in highly distributed environments and scale up to hundreds of thousands of users and devices.

Symantec Data Loss Prevention Management and Detection Servers
  • Microsoft Windows Server 2008 Standard and Enterprise
  • Microsoft Windows Server 2012 Standard, Enterprise, and Data Center
  • Red Hat Enterprise Linux 6.7 through 7.3
  • VMware ESX 5.x and later (not supported for Symantec Data Loss Prevention Network Monitor)
Symantec Data Loss Prevention Endpoint Agent
  • Apple Mac OS 10.10, 10.11, 10.12
  • Microsoft Windows Server 2008
  • Microsoft Windows 7 Enterprise, Professional and Ultimate
  • Microsoft Windows 8.1 Enterprise and Professional
  • Citrix XenApp 6.5, 7.6, 7.9, 7.11, 7.12
  • Citrix XenDesktop 7.6, 7.9, 7.12, 7.14
  • Microsoft Hyper-V Server
  • VMware Workstation 6.5.x
  • VMware View 4.6, VMware Horizon 6.0.1, 6.2.1 and 7.1
Oracle Database
  • Oracle
  • Oracle 12c Enterprise


Symantec Data Loss Prevention Add-on for Symantec Messaging Gateway

Stop spam, malware and data loss threats. New integration capabilities available in Symantec Data Loss Prevention and Symantec Messaging Gateway deliver comprehensive inbound and outbound email protection for enterprises.